$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/63586974-b35a-4b49-953d-2bcf6d3fd94e.roa File: 63586974-b35a-4b49-953d-2bcf6d3fd94e.roa (raw, json) Hash identifier: 2JShaf6M469PX/b7XmJa3b2lOSSsGWkRoU7Mo3P0X+U= Subject key identifier: 29:76:F6:BD:A5:F6:E0:95:21:CC:3D:16:3B:5A:03:12:13:48:E7:33 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3CDD0A0C3495BC6D5B88EB17E1EB45F5E496221E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/63586974-b35a-4b49-953d-2bcf6d3fd94e.roa Signing time: Tue 23 Apr 2024 00:00:00 +0000 ROA not before: Tue 23 Apr 2024 00:00:00 +0000 ROA not after: Tue 28 May 2024 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 26 Apr 2024 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:dd:0a:0c:34:95:bc:6d:5b:88:eb:17:e1:eb:45:f5:e4:96:22:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Apr 23 00:00:00 2024 GMT Not After : May 28 23:59:59 2024 GMT Subject: serialNumber=c76bfc399b25dbb65c04995df138447b0dbce3cd016d19f268eda6533993201f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:91:5e:68:cb:5d:61:95:d1:6b:05:97:01:40: 8d:e1:ee:90:ce:90:cd:61:95:af:07:11:37:3e:7a: d1:ab:1b:c3:0b:1e:bc:f9:87:da:9c:9a:0f:5c:52: 18:d8:0c:53:c9:df:d9:3d:e9:f0:00:1d:47:13:42: 58:32:4a:a0:ab:04:31:ee:98:c3:b4:68:34:c1:14: 0f:54:65:da:dd:24:79:01:98:92:94:93:cc:81:7f: f3:51:1c:59:f7:10:a0:c2:ee:c5:bf:65:00:17:c6: ff:b7:ac:ea:d6:43:98:8e:e8:86:fb:10:3a:45:0d: 47:4f:3b:e6:a4:eb:00:1c:c9:0d:a7:2c:71:50:69: 0c:91:e8:34:84:c5:26:a4:f9:76:c1:eb:e5:c9:75: 3f:22:c1:40:69:85:89:3f:f7:7a:ff:dd:2f:2c:c0: 9c:dc:78:dc:cd:7f:99:4d:cc:1b:8d:5e:26:5e:12: 72:57:77:49:82:fe:0f:d4:5e:05:10:fe:a1:09:3d: 3b:30:dd:af:61:ab:1b:35:58:66:94:84:90:bc:23: 83:e6:f2:98:7d:e9:d5:32:1b:da:39:98:eb:aa:9c: f3:e6:9a:2d:9c:67:38:b6:8c:21:a4:94:ba:8e:16: 6b:d7:7b:f9:91:8d:02:bc:c2:39:7b:9f:d3:31:8d: e3:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:76:F6:BD:A5:F6:E0:95:21:CC:3D:16:3B:5A:03:12:13:48:E7:33 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/63586974-b35a-4b49-953d-2bcf6d3fd94e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000:8000::/39 Signature Algorithm: sha256WithRSAEncryption 02:ff:e5:33:49:fe:3b:2a:d2:eb:15:ab:4f:02:bf:fd:cb:d3: f2:c6:13:a0:e6:09:b5:7b:23:99:2a:76:19:cb:09:17:1c:2a: eb:50:29:55:e7:b3:11:a5:f1:c1:1b:c5:cd:28:98:24:bf:28: 0b:9b:61:10:ef:a2:66:7f:d7:72:d9:ba:81:e6:6d:c9:db:52: 98:b0:ad:aa:12:01:0a:3a:a1:f5:05:00:85:70:53:2a:e0:17: 29:a4:5a:73:50:fa:97:86:bf:6e:87:fb:51:67:df:eb:44:13: bd:a1:06:2a:57:59:b5:bf:52:ab:5c:83:12:a2:08:be:8a:2a: 70:aa:a1:87:de:bd:1d:83:57:6c:05:70:37:85:eb:06:33:1b: 71:22:6e:58:06:bf:b0:88:fe:8d:c9:ca:56:a0:70:ca:e5:7d: 9b:9c:5e:2f:59:ec:00:c8:40:f8:b7:86:8c:70:51:5c:0b:79: 18:a5:f0:2b:87:b3:f6:b0:cb:ef:0b:4c:e2:29:b7:ca:9e:ff: 2e:c6:58:a1:04:b4:3f:c5:2c:45:42:e1:21:2b:40:92:8c:6c: 24:68:5d:30:56:db:af:14:82:6f:0b:dd:ea:78:a4:d7:85:fb: b0:8d:94:50:fe:f3:47:e0:9c:1f:d9:33:2e:c3:b8:c3:37:dd: c6:3b:d1:0a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPN0KDDSVvG1biOsX4etF9eSWIh4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjQwNDIzMDAwMDAwWhcNMjQwNTI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzZiZmMzOTliMjVkYmI2NWMwNDk5NWRmMTM4NDQ3YjBk YmNlM2NkMDE2ZDE5ZjI2OGVkYTY1MzM5OTMyMDFmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCikV5oy11hldFrBZcBQI3h7pDOkM1hla8HETc+etGrG8ML Hrz5h9qcmg9cUhjYDFPJ39k96fAAHUcTQlgySqCrBDHumMO0aDTBFA9UZdrdJHkB mJKUk8yBf/NRHFn3EKDC7sW/ZQAXxv+3rOrWQ5iO6Ib7EDpFDUdPO+ak6wAcyQ2n LHFQaQyR6DSExSak+XbB6+XJdT8iwUBphYk/93r/3S8swJzceNzNf5lNzBuNXiZe EnJXd0mC/g/UXgUQ/qEJPTsw3a9hqxs1WGaUhJC8I4Pm8ph96dUyG9o5mOuqnPPm mi2cZzi2jCGklLqOFmvXe/mRjQK8wjl7n9MxjeNxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUKXb2vaX24JUhzD0WO1oDEhNI5zMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzYzNTg2OTc0LWIzNWEtNGI0OS05NTNkLTJiY2Y2ZDNmZDk0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAAgDANBgkqhkiG9w0BAQsFAAOCAQEAAv/lM0n+OyrS6xWrTwK//cvT 8sYToOYJtXsjmSp2GcsJFxwq61ApVeezEaXxwRvFzSiYJL8oC5thEO+iZn/Xctm6 geZtydtSmLCtqhIBCjqh9QUAhXBTKuAXKaRac1D6l4a/bof7UWff60QTvaEGKldZ tb9Sq1yDEqIIvooqcKqhh969HYNXbAVwN4XrBjMbcSJuWAa/sIj+jcnKVqBwyuV9 m5xeL1nsAMhA+LeGjHBRXAt5GKXwK4ez9rDL7wtM4im3yp7/LsZYoQS0P8UsRULh IStAkoxsJGhdMFbbrxSCbwvd6nik14X7sI2UUP7zR+CcH9kzLsO4wzfdxjvRCg== -----END CERTIFICATE-----Generated at Wed Apr 24 16:34:58 2024 by rpki-client on console-fra.rpki-client.org